Re: iptables: identify host with DSL/Fritzbox
Ahh, thanks Keith!
This sound great:
> An OpenVPN connection can be separately firewalled on your server.
Thanks a lot!
I'll read the OpenVPN docs in more deep now ;-)
Keith Edmunds <email@example.com> writes:
> On Tue, 20 Jan 2009 12:39:22 +0100, firstname.lastname@example.org said:
>> Wouldn't this mean to run a second sshd (with the certificate)?
>> The sense of my little defense program is to avoid brute force attacks
>> too. How would I do that in that case?
> No change.
> An OpenVPN connection can be separately firewalled on your server. You
> could allow SSH access to all connections coming in over the VPN. No need
> for a second sshd, and no change to the scanning for other intruders
> (except don't block port 1194 UDP, which is OpenVPN's default port,
> |Keith Edmunds
> |Tiger Computing Ltd
> |"The Linux Specialists"
> |Tel: 033 0088 1511
> |Web: http://www.tiger-computing.co.uk
> |Registered in England. Company number: 3389961
> |Registered address: Wyastone Business Park,
> | Wyastone Leys, Monmouth, NP25 3SR
Sebastian Rose, EMMA STIL - mediendesign, Niemeyerstr.6, 30449 Hannover
Tel.: +49 (0)511 - 36 58 472
Fax: +49 (0)1805 - 233633 - 11044
mobil: +49 (0)173 - 83 93 417
Email: email@example.com, firstname.lastname@example.org